URLhaus Database

You are currently viewing the URLhaus database entry for https://liubaozi.cn/wordpress/wayW90OoXCT5diCZSYmJ1qg5XZyS3x86p5/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	935911
URL:	https://liubaozi.cn/wordpress/wayW90OoXCT5diCZSYmJ1qg5XZyS3x86p5/
URL Status:	Offline
Host:	liubaozi.cn
Date added:	2020-12-21 17:40:08 UTC
Last online:	2021-03-05 04:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2020-12-21 17:42:04 UTC to abuse{at}mail[dot]sthost[dot]top)
Takedown time:	2 months, 13 days, 11 hours, 9 minutes (down since 2021-03-05 04:51:14 UTC)
Tags:	doc emotet epoch2 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-12-23	AGCJC34MXEBR.doc	doc	6a99fa281763f28746b1f915866c7f2897b69d09801f3b0ac0a61517f17d90e7	27.87%	Heodo
2020-12-23	L2ETF5THSURBX.doc	doc	63725aa4926dac422d6710c815b80ad10e66b882656195a75ef13b9816cf7c53	26.98%	Heodo
2020-12-23	0QISI0QMPY9RHRGZ.doc	doc	10e82c9cb8fab1398ba9caf9a04b863ad24859a41262cbc36ae16bed8c2f9cfa	25.40%	Heodo
2020-12-23	KUROZHHQ58DLC.doc	doc	b96bdcbde5a864db016ff0e5d071c9ab68331ac9c87debcf6e019c901fc8678f	25.86%	Heodo
2020-12-23	QSVUD76QX9.doc	doc	49f4475b4c4b63927d612bfcfc707d4a25237813c727333fbcb42fec441757dc	23.81%	Heodo
2020-12-23	Y5Q6ESM6JPSI.doc	doc	8538d00638c32a97eac2e8a9e1766a39268d8effa55c28026d3b75fe114dbc18	23.81%	Heodo
2020-12-23	Q5XOPP.doc	doc	7e0f29831e6732a730d1b231a94cae3a27525976381cf6b97d15fe45c295f239	n/a	Heodo
2020-12-23	O3F0IKSAG2.doc	doc	59beb0cb64d142274d978c425b55fc8a7e7053f2f8840c09b9d751e56cd6f7d6	22.58%	Heodo
2020-12-23	66A47DB7T.doc	doc	055f997b54c9f0fe5ab2c07849d8e88daae0adb0ff26458d823b6f7413f3ac72	22.58%	Heodo
2020-12-23	W3C0CTTY.doc	doc	f989bb90fd752549af52988b47a9cf55638f97c26ea723457efd21cdab409da5	22.22%	Heodo
2020-12-23	A2TFYZNR6YH.doc	doc	318cf158cf886f17e7e947feaaf989f25e514c91bec35e9dcca2a4f2ef4baa95	22.22%	Heodo
2020-12-23	3TDIGF6.doc	doc	6083b405a5bfb099398dc2417486e1c2913bba82b96baff811a71ee6feb0884d	22.22%	Heodo
2020-12-23	MJ3OB1.doc	doc	ebfadd85753d033e248aedd9f9c5772331aff8dc35049d0842e8c423d64ea08c	20.97%	Heodo
2020-12-23	HQNBDBKL.doc	doc	f2c16e9517e4e5e59a8640d99cda01c3078c6e7720f68f7f47a8a4d7b422b72d	20.63%	Heodo
2020-12-23	NGJ6D00VT.doc	doc	cf2febee508b7992d107d1a46b3deb724fff5b3905e1b7208ed0b5106c2b63ba	39.34%	Heodo
2020-12-23	UKOMWYWH6U8J.doc	doc	a59e3318597fa65b37e597175045690d391ef038c7e58869d71ba50ab499cc64	n/a	Heodo
2020-12-23	6KL89JBRVD47D.doc	doc	93901d975d0df11ab32c4eaf841b43684882ce002e1222696c629076b1b81792	41.94%	Heodo
2020-12-23	V50AJOD2PX6.doc	doc	dad7761c55d0c4eb6fbd18182bab52f99242f7107fdf629b056cb6965ba073ce	39.68%	Heodo
2020-12-23	JR0EQCD2.doc	doc	70cd2d38d41ecad15addac25c6e09641cce2f946161ecf261e639a09576ecb8b	n/a	Heodo
2020-12-23	NYXIMP7.doc	doc	b534c439ac7a89c6af82331ebd70e5b5ce5e13a2e871bb7ab122b00004605e97	36.51%	Heodo
2020-12-23	WN95YW.doc	doc	68e9fac6a7996f04c150777aec9f02864a62b4c0d59675625c1801a231461a0b	34.92%	Heodo
2020-12-23	Z7PX061SPDH.doc	doc	cd26f4220386d91ffb1a0233ece99c207f4335aab6a4c6227d64756f16500ef7	n/a	Heodo
2020-12-23	LVBMEYW3WCFRJ.doc	doc	57f57ee9a02ff9b2983b7b3110a0269f0ac9cf44c8163805edac226aa6a5cc01	30.65%	Heodo
2020-12-23	7X0QA9.doc	doc	1f0dd0263393040d067ed555d604d764634263e4eb014755feb5d319af9db68d	30.16%	Heodo
2020-12-23	6W3MX8GLE.doc	doc	ba96b09e7eeac72b4363f7b0749f36b0f3b68ecb4b3c40462d0f9d426b4cb483	n/a	Heodo
2020-12-23	L8CHBLBPSP.doc	doc	64df2f4241becefb0876d62be5908b4d62620e2aeb97828cb2819d952d106f11	n/a	Heodo
2020-12-23	6MXZKF7VO.doc	doc	9a8b914d6bb8ae09a04b32fc897fdb9a9ffc073975b436b031ac837b7eeefb0b	26.98%	Heodo
2020-12-23	SOXL0W2GZFGJ.doc	doc	ec49319ad4b8ab163292c8a1332640a715616436de18d6b1124f4cc51b3cb4c4	26.98%	Heodo
2020-12-23	5I8VT3BA99.doc	doc	1f5a0f7a62383b576ac6f661f97a2c035e72d6f054e5b63ea53123ed9081dae6	n/a	Heodo
2020-12-23	Q5YRVLL7XC9WBLKV.doc	doc	996270116a72e21db7ce889a1caf3633d3f42aa2f51aadcec31112c5a590fff2	25.40%	Heodo
2020-12-22	U0ZZA6AEMLLC.doc	doc	815857993a030da4586f91406591e013e670d9a286faac31e529668bb9a169c8	n/a	Heodo
2020-12-22	58IPM84MVN8X9LZ1.doc	doc	05c57f48c8b1958bf16f64a292f9aa05a43f6185d02c54a0d8cf03b2fbc56ab5	25.40%	Heodo
2020-12-22	JSJBHGL81GLO74E.doc	doc	b88940065daeda56e1e49c0db60c1e275b39e435f83b785742242104d173a57a	22.22%	Heodo
2020-12-22	1VV2E1EBXW7C4W.doc	doc	bc80ebc602752fe60bc486b8620ac2692c2cf2f368e79cecd3a281ce807855e8	20.63%	Heodo
2020-12-22	RS22X09OG.doc	doc	2d523850bbd1d5abcaf76fcaceba272f038d954a97263941a3375c3301a1e2ee	20.63%	Heodo
2020-12-22	9A29W0OE.doc	doc	f03c5a8d271acc63d9646bb77c30ddbb5fae5ad755449342e6c34b5ca71a6980	20.63%	Heodo
2020-12-22	ZKHO920.doc	doc	fb2dc7dac3bf88b2407c132ee3640a68b2eec868b255245d07b6b88306065203	19.35%	Heodo
2020-12-22	HTRR42MJUVSJ1QG8.doc	doc	ac4a11a17747f0db974bbb343bdf32d636c82bc667c3223c23567faab4377ecc	23.73%	Heodo
2020-12-22	86ZP40E.doc	doc	0e0a8e32415a80ba95b8af747d13f3b6312498145d1677df7641ba3c9cf8e9b6	n/a	Heodo
2020-12-22	SX9LBT.doc	doc	e992706fe1c263e83911d8cd96067ecadffda1437a6516db6097fae0d542f0ee	n/a	Heodo
2020-12-22	GE1MQVD.doc	doc	1d5cf0fff53e0485bae46b34b71fc4b886376d458e91b8eb88a04296f36f9aad	19.35%	Heodo
2020-12-22	K9G84G33LWTOI6Q.doc	doc	e50ca86a89c2be0f4e271feba71c17c73e846bfdfc1f3ebd69d442f098acc0a0	19.35%	Heodo
2020-12-22	EMKL2W1W0FT5.doc	doc	73132ef9149825650cd15e4cc30adc5672a95f12f241a676c2887d1af9d205ec	20.63%	Heodo
2020-12-22	MFF4LV3ALX9F.doc	doc	4b89dfb2fe2832ee2b48fda59db6b7394a32e427c0363058b6d9caa2eb21d3b6	19.05%	Heodo
2020-12-22	ZTLS1OK90TPDKS4K.doc	doc	c694552f75318998b6225a21646a9893f1a581109b151e283b09868cc24424d8	18.64%	Heodo
2020-12-22	TU3O2NRTWTJKC6X.doc	doc	636b5138fc52da9fd4cc02ade2b4dc4986baf4b8614fec61d464e4a55f8e7e22	19.05%	Heodo
2020-12-22	OQ2HM3MJGV074JR.doc	doc	424f10f02cae65598b467c5ffdc4eebcc769ffb56ff1dc7e47f50eb7fd31c368	19.35%	Heodo
2020-12-22	8DRO9WOGT84BXQ.doc	doc	7bf5d728fcd19d3df1127a4d8648cd870c5d123ce9ea4b10eca54cbcd18e10af	43.55%	Heodo
2020-12-22	MEJLGDIJGH40.doc	doc	f9cde2aedc4f7b8ed8a2795c97febd0fa0caf980946d9d19819e7ba870f2ac23	44.26%	Heodo
2020-12-22	8UHT74SU8.doc	doc	c9167679e64cc007f5f7c42c046c9a36b51f62709a3e5b5350fed1fb8ce7dae9	42.86%	Heodo
2020-12-22	AR535TK0C259OR.doc	doc	46d74826799bc3bea6197713c8b199ed1faed920028c4d3acc7cbcc186276b6f	42.86%	Heodo
2020-12-22	M9DBLQE94BWDP.doc	doc	0bf21df6643e15a9eadc034f6e7bb35aa9d1b1433bad331c1944fe60418e23b7	n/a	Heodo
2020-12-22	GSG7YOCSD7T.doc	doc	14bd83ddc0151fe3a56edd4209b619cd49a7ec1d198bb98d31972295a7b0375a	n/a	Heodo
2020-12-22	MCREAQINLA9IU6.doc	doc	0906ccd9d06e96d68c703f978adce40508265b51032f906a9d16c86e0194f779	n/a	Heodo
2020-12-22	7S4PIGFKH9Y2SF.doc	doc	be0dbaaec3415c76acd2fa6e9c3969d8bf86f058be7e69e357518e173ba4d246	33.87%	Heodo
2020-12-22	RBCV8XMU6I7RK6GK.doc	doc	b7bad120c0c3ba7ed2881c98fc26104cefee58148b7c5850ceb87b683595f2a8	34.92%	Heodo
2020-12-22	FR003SS7EH8.doc	doc	a93bf1dae053588d5f7174c570551c0345f3aa682c6ff34789661370833c6c8e	n/a	Heodo
2020-12-22	2WYPQMHW9WX.doc	doc	7ec200a834392208ae8521c4804d11ff669137b4265b732a17660527ccf3cf36	36.51%	Heodo
2020-12-22	UTTZ55AOGNMSXKG.doc	doc	bf71d36b2ba7d0198a2bebd6c351f932fba9da682a76a354de6b798db426a9e9	n/a	Heodo
2020-12-22	P4Q5PJCBTDV.doc	doc	c36ccb44ed8e4738a008a47a2f239b959c43bccf182812765cb32671cbf943bf	33.33%	Heodo
2020-12-22	9WLA9N7N.doc	doc	f632c7ea1c66bf64c0739bf9fed1f3b60fb630f7cc9bcc6bf05dd0ee9bc26ccc	n/a	Heodo
2020-12-22	B1HPXVPRHS0WZGJF.doc	doc	e48eb9cca61adb1998120f5444bee783433127651cae6b81024a94d30d219652	31.75%	Heodo
2020-12-22	CY0XXR6.doc	doc	3ffaf475cb8655c59598f2c4591efaf0b153a52173bfb3a63c238008edb72201	32.26%	Heodo
2020-12-22	QGV9F5Z8EJHA3.doc	doc	90eb141295b5129c24d9912d41c928c501d0686504aa1f4df32fe72fedaabf6d	n/a	Heodo
2020-12-22	5CE4PVQEVI2ZBF07.doc	doc	02170586397abeca0120b55a547fd80c877eb800f02d55c6aad2473b369f0a3d	31.75%	Heodo
2020-12-22	JD4J9EZU1TD94G.doc	doc	e18f34fd2b761c5ff699a3bb1e6bf4fa2f9d43f91cfc0ff44794e8ae7e4ae926	n/a	Heodo
2020-12-22	PTMSCPRO7WJ.doc	doc	227f0020c011b4ed270fee166cb3427d282fb03559ba3fb44597f260ec70873b	n/a	Heodo
2020-12-22	7ZKSQZ.doc	doc	e4127959db33f6f5833f80f9c153129e3aae1396d7d29f0de10a190b6b3e83e8	n/a	Heodo
2020-12-22	OIRCG9XI0ZGG.doc	doc	fed94c0a35c3aee2ff982f1f4001348cd2f048009efffc9676fcdb1ad6ebc374	30.65%	Heodo
2020-12-22	8S6XWUXQG90LMR.doc	doc	5678fb2398f8ae050763eeb8ef6b94b0c43560105c301b6db5c453c84c7e6aa0	49.09%	Heodo
2020-12-22	9ID13Y.doc	doc	179c65c6aae9e8a8896992f0857998ef7e72fe3ca772839399d9185a8fe328d1	n/a	Heodo
2020-12-22	YFDHEPAFS1IDR89B.doc	doc	a36310d29996d1b585ddab5e38471e82d5d60a07f6265c84d483b90b1e1a2640	n/a	Heodo
2020-12-22	3JCQ8XR6.doc	doc	852a163a7446bab72a51cddd9a4f9779ed06d409186cab20d69127d08fa490f7	45.90%	Heodo
2020-12-22	7F1QI2F5.doc	doc	419de57605bb9474687edcff1207a053c0da9c08c58d7ad4671981603cc08743	47.62%	Heodo
2020-12-22	N8AJW99Z.doc	doc	2e2845f894af1842a98bb01b55cf68757e6c573d1d97c11cf41818de4a70f82b	50.79%	Heodo
2020-12-22	EN1IONR66S5.doc	doc	da52448ea549bc67ee1e7fdf9d6e2c05089cab2564cdec092e3b5be05fb662d6	n/a	Heodo
2020-12-22	9AQXPQV.doc	doc	200414fe067c46610fc5739841fdbd2c50b2c19b65693fffa9e8999c094b45fe	n/a	Heodo
2020-12-22	6EWK650FRJE.doc	doc	ba1218e38d9223acf507cfc1a458681e54567ca72f03040901578a63ffc0ba06	42.86%	Heodo
2020-12-22	QZC06GE87M9PD2C.doc	doc	47d01951e8e4d0425373658359ab6e4e764c29adf9f0a674dc51fc859ee31719	38.10%	Heodo
2020-12-22	56J2K8X1PKGBR1CG.doc	doc	4be32fc9457cb3575d9f59665e4d11c4625dd3bff4cc13ff2f25aa739753173b	45.16%	Heodo
2020-12-22	W5M9FIA.doc	doc	9eaf41a79c3932d4be36d56a7b01c16f4bc4ae8d3df11291ba46f7e2dc784627	n/a	Heodo
2020-12-21	7HIL0QO.doc	doc	83e9ba22a2d674453b12f9150d400d11d35d268d6965b4082c08f070fadfa169	40.32%	Heodo
2020-12-21	1LUIKT1.doc	doc	6a7525a409509ac4ff33649e2dab4cc9580795c516cf135dc3a0b5fb5ad0003c	38.10%	Heodo
2020-12-21	PBH266O3SW.doc	doc	798206f85b1ad48e7117fee89bc496a003d67f0b2079a39f3d80d975e8f20c78	38.10%	Heodo
2020-12-21	Z0V2UEYO21.doc	doc	b0e697eb8ea66997602b281b7a989cdac530defaceadc9fba378fe5f7035bfd8	37.10%	Heodo
2020-12-21	IPAOEGO1CT0WUAQ.doc	doc	e8b5059dd469cac6775dea2dd2c6b13026530124522eb8660f6f35c1e3bc3db5	38.10%	Heodo
2020-12-21	3MYB1N5M9Y8LB.doc	doc	64db024b0457fea3b182aa36675d4e6049ef7119c4eea836b295ccc90c3a4301	38.10%	Heodo
2020-12-21	BTZNJF3NS.doc	doc	2719607de7f3a89aa9f7f9d319f4fa0047663655a7787d1dc640dbb0eccf0f0a	38.71%	Heodo
2020-12-21	XBK5QN9ZN.doc	doc	82ea1566c823510b4773412ff621c532ed946e4fe4f0333510e1b411b1739e47	n/a	Heodo
2020-12-21	HO66D9.doc	doc	ffc74a33a2ade115faaa7b44e533c4ec410024f5e1ae28441a9a3be8eb3db433	31.75%	Heodo
2020-12-21	4L8J564G.doc	doc	d27b3bb5d449e6b4715e1c0829185b4fac0f66b16875abd74e00490f5d6bc272	31.75%	Heodo
2020-12-21	GS6AQBM8.doc	doc	081a93744d2467b4fbb8f48647345615125a87272d59bc2b49a5bceae5b6d4e9	30.65%	Heodo
2020-12-21	Y6PE21G85U9E70P.doc	doc	1afdc5f938e35f614601403516bdb5a74f02137fdb0435d5e5e7450bdc67bb5e	n/a	Heodo
2020-12-21	2GAWCDF.doc	doc	54e22af8fbd6868adc09b32bb9cfdfd5ce1160c986e240d098de778e83c49392	32.26%	Heodo
2020-12-21	DQZ6MCI2EW3H23QN.doc	doc	aae08e3210fb1a9b19f069c2e0e813c366119a932693780eb346b40f3aa5312c	31.67%	Heodo
2020-12-21	IFNTSZKV.doc	doc	f2ebfaec6ca0aeaf9fca020147398f74d7500b6be6259fc2eb4bb2e968e0cafe	26.98%	Heodo
2020-12-21	7CCVSBWSH.doc	doc	028aa25b07c0a62847f2946946d5c1e547f57cef5858933638750f37548a0da0	26.98%	Heodo
2020-12-21	E7Q4UB3OC3I.doc	doc	ae06ab67589b8207d48d6da1b4ec2d48f255bd462a2f936b22786a3d7959eed5	26.98%	Heodo